Author: Naveen Sunkavally | Page 3

June 29, 2022 | Disclosures

CVE-2022-28219 is an unauthenticated remote code execution vulnerability affecting Zoho ManageEngine ADAudit Plus, a compliance tool used by enterprises to…

June 28, 2022 | Webinar Replays

With the announcement of the addition of external penetration testing capabilities to NodeZero, Horizon3.ai is hosting a webinar to introduce…

January 6, 2022 | Attack Blogs

Log4Shell is a "once-in-a-decade" type of vulnerability that will linger in environments for years to come. For a vulnerability with…

December 10, 2021 | Attack Blogs

Understanding Log4Shell: the Apache log4j2 Remote Code Execution Vulnerability (CVE-2021-44228)

October 18, 2021 | Attack Blogs

We wanted to do something a little bit different with this post. Our vulnerability disclosures, exploit proof-of-concepts, and attack analysis…

Naveen Sunkavally

Filter Content:

CVE-2022-28219: Unauthenticated XXE to RCE and Domain Compromise in ManageEngine ADAudit Plus

Webinar: External Autonomous Pentesting

Using NodeZero to Find and Fix Log4Shell

Understanding Log4Shell: the Apache log4j2 Remote Code Execution Vulnerability (CVE-2021-44228, CVE-2021-45046)

Apache CVE-2021-41773, CVE-2021-42013